hashlookup / hashlookup-forensic-analyser
Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https://circl.lu/services/hashlookup/
☆125Updated last year
Related projects ⓘ
Alternatives and complementary repositories for hashlookup-forensic-analyser
- ☆82Updated 2 months ago
- BlackBerry Threat Research & Intelligence☆93Updated last year
- A pySigma wrapper and langchain toolkit for automatic rule creation/translation☆66Updated this week
- LOKI2 - Simple IOC and YARA Scanner☆79Updated 3 months ago
- Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…☆98Updated 3 weeks ago
- The Threat Actor Profile Guide for CTI Analysts☆96Updated last year
- Collection of Jupyter Notebooks by @fr0gger_☆142Updated 2 months ago
- Digital Forensics Artifacts Knowledge Base☆75Updated 5 months ago
- A collection of tips for using MISP.☆74Updated 7 months ago
- Python library for threat intelligence☆79Updated 4 months ago
- Rip Raw is a small tool to analyse the memory of compromised Linux systems.☆131Updated 2 years ago
- acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.☆91Updated this week
- Remote access and Antivirus Logging Database☆41Updated 6 months ago
- Forensic Artifact Collection Tool Matrix☆73Updated 2 years ago
- A toolkit for the post-mortem examination of Docker containers from forensic HDD copies☆94Updated 8 months ago
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆116Updated 11 months ago
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆62Updated 2 years ago
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆97Updated 8 months ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆37Updated 6 months ago
- A tool that allows you to document and assess any security automation in your SOC☆41Updated last week
- Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise☆56Updated 6 months ago
- Converting data from services like Censys and Shodan to a common data model☆48Updated 2 months ago
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆72Updated this week
- Cisco Orbital - Osquery queries by Talos☆122Updated 2 months ago
- An opensource sigma conversion tool built using pysigma☆95Updated this week
- Logbook for Digital Forensics and Incident Response☆49Updated 3 months ago
- CSIRT Jump Bag☆27Updated 6 months ago
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆49Updated 2 years ago
- A community event for security researchers to share their favorite notebooks☆106Updated 8 months ago